CVE-2024-56658
- EPSS 0.23%
- Veröffentlicht 27.12.2024 15:15:25
- Zuletzt bearbeitet 03.11.2025 21:18:15
In the Linux kernel, the following vulnerability has been resolved: net: defer final 'struct net' free in netns dismantle Ilya reported a slab-use-after-free in dst_destroy [1] Issue is in xfrm6_net_init() and xfrm4_net_init() : They copy xfrm[46...
CVE-2024-56659
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:25
- Zuletzt bearbeitet 03.11.2025 21:18:15
In the Linux kernel, the following vulnerability has been resolved: net: lapb: increase LAPB_HEADER_LEN It is unclear if net/lapb code is supposed to be ready for 8021q. We can at least avoid crashes like the following : skbuff: skb_under_panic: ...
CVE-2024-56660
- EPSS 0.21%
- Veröffentlicht 27.12.2024 15:15:25
- Zuletzt bearbeitet 03.11.2025 21:18:15
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: DR, prevent potential error pointer dereference The dr_domain_add_vport_cap() function generally returns NULL on error but sometimes we want it to return ERR_PTR(-EBUSY) ...
CVE-2024-56643
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 03.11.2025 21:18:13
In the Linux kernel, the following vulnerability has been resolved: dccp: Fix memory leak in dccp_feat_change_recv If dccp_feat_push_confirm() fails after new value for SP feature was accepted without reconciliation ('entry == NULL' branch), memory...
CVE-2024-56644
- EPSS 0.23%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 12.01.2026 13:10:13
In the Linux kernel, the following vulnerability has been resolved: net/ipv6: release expired exception dst cached in socket Dst objects get leaked in ip6_negative_advice() when this function is executed for an expired IPv6 route located in the exc...
CVE-2024-56645
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 03.11.2025 21:18:13
In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939_session_new(): fix skb reference counting Since j1939_session_skb_queue() does an extra skb_get() for each new skb, do the same for the initial one in j1939_sessi...
CVE-2024-56647
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 01.06.2026 17:16:31
In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering ip_rt_bug arp link failure may trigger ip_rt_bug while xfrm enabled, call trace is: WARNING: CPU: 0 PID: 0 at net/ipv4/route.c:1241 ip_rt_bu...
CVE-2024-56648
- EPSS 0.24%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 03.11.2025 21:18:14
In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid potential out-of-bound access in fill_frame_info() syzbot is able to feed a packet with 14 bytes, pretending it is a vlan one. Since fill_frame_info() is relying o...
CVE-2024-56649
- EPSS 0.23%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 01.10.2025 20:17:36
In the Linux kernel, the following vulnerability has been resolved: net: enetc: Do not configure preemptible TCs if SIs do not support Both ENETC PF and VF drivers share enetc_setup_tc_mqprio() to configure MQPRIO. And enetc_setup_tc_mqprio() calls...
CVE-2024-56650
- EPSS 0.26%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 03.11.2025 21:18:14
In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: fix LED ID check in led_tg_check() Syzbot has reported the following BUG detected by KASAN: BUG: KASAN: slab-out-of-bounds in strlen+0x58/0x70 Read of size 1 ...